Linux Featured FASTCash for Linux Analysis of a newly discovered Linux based variant of the DPRK attributed FASTCash malware along with background information on payment switches used in financial networks.
Linux Hiding in plain sight (part 2) - Abusing the dynamic linker A stealthy process stomping method compatible with UNIX-like systems with anti-forensic enhancements for Linux.
malware How did Facebook intercept their competitor's encrypted mobile app traffic? A technical investigation into information uncovered in a class action lawsuit that Facebook had intercepted encrypted traffic from user's devices running the Onavo Protect app in order to gain competitive insights.
malware Featured GTPDOOR - A novel backdoor tailored for covert access over the roaming exchange Discovery and analysis of a magic packet type implant that communicates C2 traffic over the GTP-C 3GPP protocol.
